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CROSS-REFERENCE TO RELATED APPLICATIONS 
Not Applicable. 

FIELD OF THE INVENTION 

This invention generally relates to collecting personal identifying information from 
users receiving output at data output devices, and transmitting personal identifying 
information back to the source of the data. The invention more particularly relates to the 
use of portable electronic devices entering the personal identifying information which is 
received at the data output device and sent back to the data source. 

BACKGROUND OF THE INVENTION 

Current computer networks provide the ability to easily access data stored on 
multiple computers connected to the network, and to cause the data to be output, e.g., 
printed, on multiple output devices connected to the network. This versatility also reduces 
(to some extent) accountability for use of information stored on the system. Data stored 
on the computer systems can be accessed and outputted (e.g., printed) from multiple 
physical locations. 

A computer network may comprise display terminals, printers, and fax machines, 
as output devices. The computers in network convert data received into a format 
appropriate for output devices such as a fax machine. 
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Although computer networks are useful, there are problems regarding the security 
of certain information during remote output and the accountability of persons receiving 
output data. The problems of security and accountability are separate and distinct 
problems. One known solution to the problem of security during remote data output 
requires a user ID and password to be entered into a computer before documents are 
accessed. Once the documents have been accessed, they can be freely sent to an output 
device, e.g., a printer. 

Another solution to the problem of security during remote data output is disclosed 
in U.S. Patent No. 5,752,697 by Barry P. Mandel et al. for "Remote Printing Job 
Confidentiality" issued on May 19, 1998. A system is disclosed in which system electronic 
print jobs from different users at different locations may be electronically sent to be printed, 
and hard-copy print jobs are automatically fed into respective selected lockable physical 
mailboxes. Entry to the physical mailbox is actuated by entry of an authorized jam 
clearance access code. 

Still, another solution to the problem of security during remote data output is 
disclosed by U.S. Patent No. 5,633,932 by Derek L. Davis et al. entitled "Apparatus and 
Method for Preventing Disclosure Through User-Authentication at a Printing Node" issued 
May 27, 1 997. This patent discloses one or more types of security devices, such as smart 
cards, data entered by the user through a keyboard, and biometric data. Similarly, U.S. 
Patent No. 5,771,101 by Roy Bramall for "Data Security System" issued June 23, 1998 
discloses a system which records outputted data along with user identification information 
in a data recording system which may be subsequently accessed to conduct security 
audits. 

In the case of computer systems being used as a communication systems, the 
transmitted information may include security provisions such as those described above at 
the receiving end. These security provisions, although useful, do not address the problems 
of accountability of a person receiving output data. Accordingly, there is a need to provide 
the identity of the person receiving data. 
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Also, there is a class of output data or documents which is sensitive in that it is 
restricted to a range of recipients (within a specific office, for example) but which, due to 
the environment, would not be a candidate for targeting to a specific individual. Typically, 
such data, sent to a particular remote output device may be accessed or retrieved by 
5 anyone at a respective location without any identification or knowledge of the person 
retrieving the document. This is especially true where the only security required is access 
to the restricted area where a particular printer or fax or some other recipient output device 
may be placed. 

Aside from the issue of misappropriation, there are often a variety of business and 
10 legal reasons to maintain a record of who has produced an output of certain documents. 
^ For example, in a business context, an author or sender of a document may want to have 
5 proof that the intended recipient received a document (e.g., a statement of company 
»! policies). Such a document does not call for security restrictions. Rather, there is a need 
5 to confirm that a specific person output the document, so that it can be known that the 

ITS 

fg recipient had been put on notice as to the information conveyed. 
j y What is needed is a system which determines the identity of a person or persons 

Q receiving information output at an output device, and sends that data back to the sender, 
u What is further needed is a system which collects descriptive data about a person 

% or persons accepting output data at an output device, and conveys the descriptive data 
22 back to a party who sent the output data. 

What is still further needed is a system which collects descriptive data about a 
person or persons, accepting output data at an output device, and conveys the descriptive 
data back to a third party designated by the person outputting the data. 

25 

SUMMARY OF THE INVENTION 

According to the inventive principles as disclosed in connection with a preferred 
embodiment, a record may be made showing the party retrieving a document sent to a 
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remote location over a two-way communication system, directly in response to standard 
identifying information, without the corroboration or verification of a password and without 
any need for encryption. The invention, according to the inventive principles, may be used 
with any kind of two way communication system, whether local or world wide through the 
Internet, and including wireless systems, circuit switched telephone systems, cable or fiber 
optic systems. Use of the method or system, according to the inventive principles 
disclosed, allows a record or trail to be established by standard identity data, leading to the 
party who was the one actually accessing or retrieving a remotely delivered document. 
This record or trail is particularly useful as it can be used with any document, in any form, 
whether in a data file such as a word processing file or data base file, spread sheet file, or, 
without limitation, in any other form, as would be known to those skilled in the art or which 
may be developed, and whether or not encrypted, encode, or otherwise limited to named 
identified parties permitted access to the document. The inventive principles may be 
applied to any remote document delivery system, such as for example, a printer, facsimile, 
or computer processor having a data store or a display, or any other kind or type of device, 
capable of receiving information, storing the information, and then displaying the 
information in a temporary display or in a human readable printed version, and as would 
be known to those skilled in the art, presently or as may be developed. 

BRIEF DESCRIPTION OF THE DRAWINGS 

The subject matter which is regarded as the invention is particularly pointed out and 
distinctly claimed in the claims at the conclusion of the specification. The foregoing and 
other objects, features, and advantages of the invention will be apparent from the following 
detailed description taken in conjunction with the accompanying drawings. 

FIG. 1 shows a schematic of a computer system according to an embodiment of the 
invention. 
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FIG. 2 shows a schematic of a smart card used in connection with an embodiment 
of the invention. 

FIG. 3 is a flow diagram of a program executed by the smart card shown in FIG. 2 
FIG. 4 is a flow diagram of a process for obtaining personal identification information 

from a person receiving a file output. 

FIG. 5 is a flow diagram of a process for displaying personal identification 

information. 

FIG. 6 is a schematic form a VCard and in particular the information which may be 
contained on a VCard to identify the bearer of the Vcard and which may be used in the 
output device of FIG. 1. 

DETAILED DESCRIPTION OF A PREFERRED EMBODIMENT 

However, it should be understood that these embodiments are only examples of the 
many advantageous uses of the innovative teachings herein. In general, statements made 
in the specification of the present application do not necessarily limit any of the various 
claimed inventions. Moreover, some statements may apply to some inventive features but 
not to others. In general, unless otherwise indicated, singular elements may be in the 
plural and visa versa with no loss of generality. 

Referring to FIG. 1, a computer system used in connection with an embodiment of 
the invention is shown. A client computer 101 is connected to an output device control 
server 105 through a bidirectional data link 103. The output device control server 105 is 
connected through a bidirectional data link 1 07 to an output device 1 09. The output device 
109 may take the form of printer, FAX machine, memory medium write device, display 
screen, or any other kind or type of device, capable of receiving information, storing the 
information, and then displaying the information in a temporary display or in a human 
readable printed version, and as would be known to those skilled in the art, presently or as 
may be developed. 
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The output device 109 is connected by a bidirectional data link 111 to a communication 
interface 113. The communication interface 113, can be temporarily coupled to a personal 
physical identification device 117 in order to receive data therefrom though a temporary 
bidirectional data link 115. 
5 In another embodiment, the function of the server 1 05 is combined with the output 

device 109 into a output single device with local storage for holding file data for later 
output. 

The bidirectional data links shown in FIG. 1: 103, 107, 111, 115 may use a variety 
of different protocols. Some of the data links may comprise a local area network (LAN), 
1 0 operating on Ethernet protocol for example, whereas one or more of the bidirectional data 
q links may be external to, yet connected with the LAN. For example, in the case of remote 
?5 client computer, 101 parts of the bidirectional data link 103, may be comprise parts of the 
m Internet communication infrastructure, leased line, or parts of the public telephone system, 
~ including wireless systems. The communication protocols used in different layers of the 
^5 communication protocol stack can also vary. 

In the case the output device 109, is a printer or a FAX machine, the 
H communication protocol used is advantageously a bidirectional communication protocol 
M= such as IPP, IFAX, or the Intelligent Printer Data Stream (IPDS). These protocols could 
q be extended to handle the new authentication data or another communications protocol 
j 20 that is extensible may be employed. 

The data link 1 1 1 between the output device 1 09 and the communication interface 
113, in one embodiment, comprises a serial port adapter or a parallel port adapter for 
example. The output control device in one embodiment is a micro-controller (i.e. 
microprocessor with associated memory and input/output (I/O) interface) integrated into 
25 a so-called "smart" printer. 

Referring to FIG. 2 a personal physical identification 117A is shown in the form of 
a smart card incorporating a Java enabled ibutton. The smart card is card sized device 
comprising a microprocessor, Read Only (ROM) memory, Random Access (RAM) memory 
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and an I/O means used for business and financial communication. An ibutton is a tamper 
proof secure microprocessor/memory device made by Dallas Semiconductor of Dallas, 
Texas which is suitable for use in the smart card shown in FIG. 2. A Java enabled ibutton 
is an ibutton loaded with a form of the Java Virtual Machine. A Java Virtual Machine is a 
[ 5 collection of software routines that are written for a particular processor architecture, 
providing a standardized interface to the underlying architecture for programs written in 
the Java language. The Java programming language is a product of Sun Micro Systems 
of Palo Alto, California. The smart card 117A comprises a microprocessor 203, Non- 
Volatile Random Access Memory (NVRAM) 205, Read Only Memory (ROM) 207, and a 
1 0 1 -wire I/O interface. The 1 -wire I/O bus is a standard developed by Dallas Semiconductor, 
o Computer code embodying the Java Virtual Machine 21 1 is stored in ROM 207. A VCARD 
^ application program 215 is stored in the NVRAM. In the case of ibutton smart card, the 
!y communication interface 123 would take the form of Blue Dot interface. The Blue Dot 
m interface has one 1-wire I/O port for connecting to the ibutton, and one serial or parallel 
:Jf5 port for connection to the output device 1 09. The Blue Dot interface is a product of Dallas 

S If 

^ Semiconductor. 

'Q Although a smart card has been shown in FIG. 2, it may be desirable to incorporate 

the functional components described in connection with FIG. 2 into a different type of 

o article, more convenient and personal to the user such as a Radio Frequency ID (RFID), 

"20 Java Ring or other portable device. For example a Java Ring is a ring that can be worn by 
a user and incorporates a Java Enabled iButton such as discussed in connection with FIG. 
2. A Java enabled ibutton could also be incorporated into a key chain. 

The present invention, as would be known to one of ordinary skill in the art could be 
produced in hardware or software, or in a combination of hardware and software. The 

25 system, or method, according to the inventive principles as disclosed in connection with 
the preferred embodiment, may be produced in a single computer system having separate 
elements or means for performing the individual functions or steps described or claimed 
or one or more elements or means combining the performance of any of the functions or 
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steps disclosed or claimed, or may be arranged in a distributed computer system, 
interconnected by any suitable means as would be known by one of ordinary skill in art. 

According to the inventive principles as disclosed in connection with the preferred 
embodiment, the invention and the inventive principles are not limited to any particular kind 
of computer system but may be used with any general purpose computer, as would be 
known to one of ordinary skill in the art, arranged to perform the functions described and 
the method steps described. The operations of such a computer, as described above, may 
be according to a computer program contained on a medium for use in the operation or 
control of the computer, as would be known to one of ordinary skill in the art. The 
computer medium which may be used to hold or contain the computer program product, 
may be a fixture of the computer such as an embedded memory or may be on a 
transportable medium such as a disk, as would be known to one of ordinary skill in the art. 

The invention is not limited to any particular computer program or logic or language, 
or instruction but may be practiced with any such suitable program, logic or language, or 
instructions as would be known to one of ordinary skill in the art. Without limiting the 
principles of the disclosed invention any such computing system can include, inter alia, at 
least a computer readable medium allowing a computer to read data, instructions, 
messages or message packets, and other computer readable information from the 
computer readable medium. The computer readable medium may include non-volatile 
memory, such as ROM, Flash memory, floppy disk, Disk drive memory, CD-ROM, and 
other permanent storage. Additionally, a computer readable medium may include, for 
example, volatile storage such as RAM, buffers, cache memory, and network circuits. 

Furthermore, the computer readable medium may include computer readable 
information in a transitory state medium such as a network link and/or a network interface, 
including a wired network or a wireless network, that allow a computer to read such 
computer readable information. 

Referring to FIG. 3 a flow diagram of the VCARD application program is shown. In 
the first block 301 , a request for personal identifying information is received through the 1 - 
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wire I/O. In the second block 303 personal identifying information is sent out through the 
1-wire I/O. The information is preferably in the VCARD format. The VCARD format is 
defined by a standard for presenting personal identifying information supported by the 
Versit Consortium, an industry group. The VCARD format provides a standardized format 
for communicating a variety of non confidential information about a person, including, but 
not limited to, such information as would be contained on a printed business card. Some 
data items that may be included according to the standard are the persons named in 
various formats, addresses, different phone numbers along with indications of what they 
are (e.g. fax, work). According to the standard non-character data for example an audio 
file giving the pronunciation of the users name, or a graphic file containing a picture of the 
person, may also be included. In order to include non-character data in the VCARD it is 
character encoded. One standard for character encoding is called Base64 encoding. 
Base64 encoding converts each consecutive group of six bits into a character specified in 
a table given by the standard. The VCARD data is formatted along with field names, and 
data format indicating information. Certain data items may be included by reference to a 
universal resource identifier (URI) contained in the VCARD in lieu of the data itself. The 
VCARD specification, copyrighted in 1996 may be found on the Internet at: 
http://www.imc.org/pdi/vcard-21.txt, and is hereby incorporated herein by reference in its 
entirety. The VCARD specification is open in that it allows for additional fields of 
information to be included according to the design the implementation. In another 
embodiment the disclosed principles of the invention, the identifying data may be combined 
with data indicative of the time or place of data access. 

FIG. 4 depicts a flow diagram according to an embodiment of the invention from the 
perspective of the output device control server 105, shown in FIG. 1. In process block 401, 
a file is received for outputting from the client computer 101 , at the output device control 
server 105. The file is sent along with information identifying its source (e.g. a network 
address and/or sending parties personal identification (e.g. information including an email 
address). In the next process block 403, the file is held in the output device control server 
105. In the next process block 405, a users request for outputting the file is received e.g. 
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via a graphical user interface (GUI) of the output device control server 105. In the next 
process block, 407 the user is prompted to present/connected physical identification. In 
the next process block 409 personal physical identification is read. 

It is important to note, that in another embodiment, the process blocks 405 and 407 
are optional and the output file is held at the output device 109 locally, rather than 
requesting the file from the server 1 05. 

In the case of a smart card 117A, the user will insert the smart card 117A, into 
communication interface 113. A signal requesting personal identifying information is then 
sent to the Smart Card 117A, and the Smart Card 117A carries out the flow diagram 
depicted in FIG. 3. The file is then sent in block 41 1 through output device 109. 

The system and the method according to the disclosed inventive principles may be 
used, for example within the VCard format shown in a schematically represented VCard 
shown in FIG. 6. Such information is typically limited to general information such as, name, 
all relevant addresses and phone numbers, all relevant multimedia data and audio data, 
without regard to encryption or passwords or special codes for authentication of the identity 
of the party accessing the document from the output device 1 09 of FIG. 1 . 

In the process block 415, a record is generated which comprises information 
regarding the file (e.g. a filename, creation date) and personal identifying information 
obtained from the personal physical identification 1 1 7 of the user received in process block 
409. As discussed above in connection with FIG. 2, the personal physical identification 
could be a smart card 1 1 7A which sends personal identifying information (in step 303, FIG. 
3) through the communication interface 1 13 to the output device 109. The record is then 
sent from the output device control server 105, back to the source of the file which is 
known from the information identifying the source sent along with the file. The record may 
be sent directly back to a specific computer specified by a network address, or the record 
may be sent back to a user via an email system depending on format used to identify the 
source. 
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In the embodiment where the output device 1 09 and the output device control server 
105 are not combined in one integrated unit, the personal identification is sent from the 
output device 1 09 to the server 1 05 via link 1 07. 

According to later embodiments, the invention provides an electronic return receipt, 
that is it provides the sender of the file with personal identifying information of the person 
who accepted the output. The intended recipient may be the sender e.g. in the case where 
a sender sends a confidential print job to a networked group printer, or a second person 
with whom the sender intends to communicate. 

Referring to FIG. 5 a flow diagram of process run on client computer 101 is shown. 
In the first process block 501 , the record sent in process block 419 from the output device 
control server 105, comprising personal identifying information and identification of the 
output file is received at the client computer 101. In the next process block 503, the 
personal identifying information is displayed on a display device (not shown) associated 
with the client computer 101. The information may be displayed in association with the 
name of the output file. For example in the case of printer type output device 109, the 
information may be displayed in a dialog box on a display screen of the client computer 
101, generated by a print manager program running on the client computer 101. 

In still another embodiment, where the output device 109 is a printer includes an 
error-knowledgeable system, such as IBM's industry standard Intelligent Printer Data 
Stream, the information is sent back from the output device 109 to client computer 101 
could include a report of any errors encountered while printing and how many pages 
actually printed. 

The client computer may for example comprise a client computer 101, and the 
output device control computer 105, may for example comprise a microprocessor-based 
system running a suitable operating system. Operating systems include DOS, Windows 
3.1/95/98/NT, Linux, Unix, Macintosh, OS/2 and comprising microprocessor; Basic Input 
Output System read only memory (BIOS ROM) Random Access Memory (RAM); hard 
disks, removable media drive, e.g. Compact Disk Read Only Memory (CD-ROM) drive, 3.5 
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MB disk drive; communication device e.g. network card or modem; monitor, video driver 
board, keyboard. 

Although a specific embodiment of the invention has been disclosed, it will be 
understood by those having skill in the art that changes can be made to this specific 
embodiment without departing from the spirit and scope of the invention. The scope of the 
invention is not to be restricted, therefore, to the specific embodiment, and it is intended 
that the appended claims cover any and all such applications, modifications, and 
embodiments within the scope of the present invention. 

What is claimed is: 
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